International Journal of Network Security & Its Applications (IJNSA), Vol.6, No.4, July 2014
Evaluation of Enhanced Security Solutions in 802.11-Based Networks Ajah Ifeyinwa Angela Department of Computer Science, Ebonyi State University Abakaliki, Nigeria
ABSTRACT Traditionally, 802.11-based networks that relied on wired equivalent protocol (WEP) were especially vulnerable to packet sniffing. Today, wireless networks are more prolific, and the monitoring devices used to find them are mobile and easy to access. Securing wireless networks can be difficult because these networks consist of radio transmitters and receivers, and anybody can listen, capture data and attempt to compromise it. In recent years, a range of technologies and mechanisms have helped makes networking more secure. This paper holistically evaluated various enhanced protocols proposed to solve WEP related authentication, confidentiality and integrity problems. It discovered that strength of each solution depends on how well the encryption, authentication and integrity techniques work. The work suggested using a Defence-in-Depth Strategy and integration of biometric solution in 802.11i. Comprehensive in-depth comparative analysis of each of the security mechanisms is driven by review of related work in WLAN security solutions.
KEYWORDS AES, Attacks, CCMP, IPSec, Radius, SSL, TKIP, VPN
1. INTRODUCTION Wireless network has gained wide deployment due to numerous benefits such as user mobility, rapid and cheap installation, flexibility, scalability, and increased productivity it offers. In addition, rapid advances in this technology with improved capabilities which is seen in third generation (3G) and fourth generation (4G) wireless devices make it attractive for enterprise to run their business. However, the use of this novel technology does not go without security risk. 802.11 network also referred to as WLAN is challenged by lack of physical protection in the medium. Moreover, the fact that WLAN device are ship with all security features disabled make it a playground for hackers to tread on. Higher percentage of these hacker use to to access internet freely and others use it for malicious activites. Traditional WLAN that relies on WEP has security flaws that were revealed in FMS attack (2001), Korek attack (2004), PTW attack (2007), and ChopChop attack (2008), [1]. The consequences of unsecured WLAN are very dangerous to users and business enterprise. Attacks pepertrated on the networks have adverse effects on both individual users and business enterprises. Currently, the availability of more secured security solutions and security deployment best practises has greatly addressed security issues of the legacy protocols. This has made many wireless deployments to be probably more secure than the wired LAN. This is possible because many of the IEE802.11 standards (802.1X, 802.11i) offer security features designed to resolve long standing weakness or address newly discovered ones. Researchers have proved the standards to be vulnerable and these are cited in section two of this work. To the best of my knowledge this is the first worked that holistically surveyed and evaluated the outcome of these past researches on security protocols; 802.1X, WPA , WPA2 ,in juxtaposition to VPN SSL, and VPN IPsec. The objectives of the study are; to give the reader a DOI : 10.5121/ijnsa.2014.6403
29